At Fri, 14 Mar 2008 21:36:29 -0500, Dean Willis wrote: > > Hadriel Kaplan wrote: > > John, can you elaborate more on the straw-man proposal? I'm not sure > > I fully grok it. > > > > When I commented at the mic that the problem with such a concept, > > assuming I understand the proposal, is that there is nothing stopping > > any middle-man or frankly anything on the planet from simply signing > > a [EMAIL PROTECTED], for their domain name. Jonathan's response I > > think was "well that makes it the same strength as PSTN". But this > > makes it effectively useless to sign or verify. Why bother signing? > > Just use PAID. (which may well be the final result of all this > > discussion) > > You MUST sign in order to be able to use DTLS-SRTP effectively.
This is not correct. Even in the absence of signatures, DTLS-SRTP provides significant value because you need to actively modify both the signalling and the media (what draft-ietf-sip-media-security-requirements calls active-signaling-active-media). -Ekr _______________________________________________ Sip mailing list https://www.ietf.org/mailman/listinfo/sip This list is for NEW development of the core SIP Protocol Use [EMAIL PROTECTED] for questions on current sip Use [EMAIL PROTECTED] for new developments on the application of sip
